7 Managing Users and Groups in OCI IAM

Overview of user, group, and policy management for Oracle Fusion Cloud Enterprise Performance Management and Oracle Fusion Cloud Enterprise Data Management in Oracle Cloud Infrastructure (OCI) Identity and Access Management (IAM).

User and group management can be configured in several ways, depending on your organization’s identity setup:

• Directly in the IAM Interface in Oracle Cloud Console: Create and manage users and groups through the IAM interface. See:

  • Creating User
  • Updating User
  • Deleting Users

• Through an external Identity Provider (IdP): Integrate with providers such as Microsoft Entra ID or Okta using SAML 2.0 federation. Authenticated users are automatically synchronized with IAM for centralized access management. See Using SCIM to Synchronize Users and Groups on Oracle Identity Cloud.

• Group Memberships: Users can be added directly to IAM (IDCS) groups or automatically synced from enterprise IdP groups. See Creating IDCS Groups.

• Policies: Assign policies to groups to provide fine-grained control over the actions and permissions available to each set of users. See Setting Password Policies.